$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: fcN9FJnBu+FdCwFLn8inbFECxnElwueVp1LJLb/bPRU= Subject key identifier: A4:3D:BD:14:D6:F2:E5:FA:C5:41:69:B0:BB:08:7C:FE:45:9C:F1:42 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 01CB Signing time: Mon 11 Aug 2025 02:59:39 +0000 Manifest this update: Mon 11 Aug 2025 02:59:38 +0000 Manifest next update: Mon 18 Aug 2025 02:59:38 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: mBNF2WzkntcadaA3mtyrx6UjUsER2ywRgFp+P0PE1kM=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: jtm4IGu6ehkk/GhdKICbbynbKgcYNoX0OJfsqwSmMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Aug 11 02:59:38 2025 GMT Not After : Aug 18 02:59:38 2025 GMT Subject: CN=68995c9b-03be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:9b:c1:74:5e:cf:c9:d2:13:0f:a5:af:e5: 00:f1:c6:24:25:9f:8c:8d:a7:70:fd:80:21:d7:bb: 6e:41:ea:14:d8:05:ae:09:98:1e:1a:ce:b5:67:ec: c0:ef:91:39:95:3a:76:03:8d:91:a4:d3:24:14:ac: 79:ed:95:02:bc:ba:9a:c2:c5:b0:1d:03:be:a8:1e: f0:83:fe:b2:14:8f:13:a5:bd:83:c0:e5:7b:a7:eb: 7a:ae:e4:1b:92:e8:c3:2a:f1:96:1b:ba:8a:c1:b2: e3:2c:cc:2f:ca:f9:a6:c6:07:58:8f:5a:8e:ed:5e: 8a:34:de:6e:c9:ab:5c:81:a4:e5:67:ab:55:1a:dd: 5e:56:4f:d3:05:60:48:82:d2:a4:fc:03:af:7a:85: b2:47:b7:b4:ee:2a:05:58:f9:e4:91:30:b0:b8:7c: 5b:19:ba:98:e0:32:db:4f:f6:d2:fa:bf:30:5f:51: 4e:4e:62:ba:9e:6b:21:0b:de:e3:a1:56:6d:29:3e: 48:e2:15:ae:c7:93:1a:a1:f8:c1:f9:a7:03:af:ef: b6:9c:9f:1d:82:da:48:db:c2:0f:c7:3f:b4:5b:05: 1d:0e:53:7b:e5:d7:8a:2d:4d:a5:32:31:e7:2f:e7: e8:4b:bd:ae:c9:85:95:c8:d8:95:6e:39:2c:d0:a2: 80:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3D:BD:14:D6:F2:E5:FA:C5:41:69:B0:BB:08:7C:FE:45:9C:F1:42 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:76:5f:dc:fd:9d:26:21:8c:58:55:09:57:b6:77:ff:f8:e1: 01:43:9d:d9:34:2a:8f:fe:6a:5f:0e:de:6a:24:01:8c:86:ef: ed:f1:bb:a2:9d:c6:3f:87:17:6f:82:ab:77:68:4b:ec:86:a1: 1d:86:98:75:02:f8:26:e2:0b:b1:7e:fa:5c:82:53:8e:f4:12: 95:13:93:d6:47:7f:b3:c8:3b:65:fe:95:ac:41:b1:51:e5:1e: 3b:21:ad:be:16:c8:38:4f:64:29:d6:90:55:bb:b9:4f:ec:14: fa:b4:dd:cd:2b:2b:74:82:c1:3e:63:bb:c1:66:0c:59:0a:ce: 6d:9b:78:2f:3b:71:ad:cf:22:72:d7:0a:9f:b5:d0:a7:da:c6: d5:23:0d:6a:14:92:5d:3d:46:dc:b4:14:99:87:81:79:92:71: 4f:7d:59:ca:19:44:96:cb:7b:b3:c7:41:73:5a:03:e0:2a:b5: 98:28:96:24:1a:da:54:4c:3b:05:f4:94:5c:db:9b:c7:47:56: b4:0d:e4:8c:01:0d:a2:20:47:a5:d8:e0:9b:ff:d9:9a:13:5d: 06:97:d0:46:bb:36:21:24:23:c5:ee:4f:b1:da:d3:d5:88:fb: 32:ff:32:d4:02:37:37:eb:bf:1f:d5:e3:2c:e0:5f:f3:8b:14: bc:f6:e1:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUwODExMDI1OTM4WhcNMjUwODE4MDI1OTM4WjAYMRYwFAYD VQQDEw02ODk5NWM5Yi0wM2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9KbwXRez8nSEw+lr+UA8cYkJZ+Mjadw/YAh17tuQeoU2AWuCZgeGs61Z+zA 75E5lTp2A42RpNMkFKx57ZUCvLqawsWwHQO+qB7wg/6yFI8Tpb2DwOV7p+t6ruQb kujDKvGWG7qKwbLjLMwvyvmmxgdYj1qO7V6KNN5uyatcgaTlZ6tVGt1eVk/TBWBI gtKk/AOveoWyR7e07ioFWPnkkTCwuHxbGbqY4DLbT/bS+r8wX1FOTmK6nmshC97j oVZtKT5I4hWux5MaofjB+acDr++2nJ8dgtpI28IPxz+0WwUdDlN75deKLU2lMjHn L+foS72uyYWVyNiVbjks0KKAYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQ9vRTW 8uX6xUFpsLsIfP5FnPFCMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEdl/c/Z0mIYxYVQlXtnf/+OEBQ53ZNCqP/mpfDt5qJAGMhu/t8bui ncY/hxdvgqt3aEvshqEdhph1Avgm4guxfvpcglOO9BKVE5PWR3+zyDtl/pWsQbFR 5R47Ia2+Fsg4T2Qp1pBVu7lP7BT6tN3NKyt0gsE+Y7vBZgxZCs5tm3gvO3GtzyJy 1wqftdCn2sbVIw1qFJJdPUbctBSZh4F5knFPfVnKGUSWy3uzx0FzWgPgKrWYKJYk GtpUTDsF9JRc25vHR1a0DeSMAQ2iIEel2OCb/9maE10Gl9BGuzYhJCPF7k+x2tPV iPsy/zLUAjc3678f1eMs4F/zixS89uEc -----END CERTIFICATE-----Generated at Mon Aug 11 10:51:31 2025 by rpki-client